Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Dotstore — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting Dotstore. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Dotstore is an e-commerce platform enabling online retail operations with core functionality for product listings and payment processing. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its nine recorded CVEs. Security researchers have identified input validation weaknesses as a recurring problem, potentially allowing attackers to execute arbitrary code or manipulate user sessions. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests a need for rigorous input sanitization and secure coding practices to mitigate risks for merchants and customers alike.

Top products by Dotstore: Fraud Prevention For Woocommerce Product Size Charts Plugin for WooCommerce Advance Menu Manager Minimum and Maximum Quantity for WooCommerce Hide Shipping Method For WooCommerce Advanced Linked Variations for Woocommerce Woocommerce Category Banner Management Extra Fees Plugin for WooCommerce
CVE IDTitleCVSSSeverityPublished
CVE-2026-39671 WordPress Extra Fees Plugin for WooCommerce plugin <= 4.3.3 - Cross Site Request Forgery (CSRF) vulnerability — Extra Fees Plugin for WooCommerceCWE-352 7.1 High2026-04-08
CVE-2026-25443 WordPress Fraud Prevention For Woocommerce plugin <= 2.3.3 - Arbitrary Content Deletion vulnerability — Fraud Prevention For WoocommerceCWE-862 7.5 High2026-03-19
CVE-2026-22354 WordPress Woocommerce Category Banner Management plugin <= 2.5.1 - PHP Object Injection vulnerability — Woocommerce Category Banner ManagementCWE-502 8.8 High2026-02-20
CVE-2026-24553 WordPress Fraud Prevention For Woocommerce plugin <= 2.3.2 - Sensitive Data Exposure vulnerability — Fraud Prevention For WoocommerceCWE-497 4.3 Medium2026-01-23
CVE-2025-46244 WordPress Advanced Linked Variations for Woocommerce plugin <= 1.0.3 - Broken Access Control Vulnerability — Advanced Linked Variations for WoocommerceCWE-862 5.3 Medium2025-04-22
CVE-2025-22694 WordPress Hide Shipping Method For WooCommerce plugin <= 1.5.1 - Broken Access Control vulnerability — Hide Shipping Method For WooCommerceCWE-862 4.3 Medium2025-02-03
CVE-2025-23991 WordPress Product Size Charts Plugin for WooCommerce plugin <= 2.4.5 - Broken Access Control vulnerability — Product Size Charts Plugin for WooCommerceCWE-862 4.3 Medium2025-01-24
CVE-2024-54381 WordPress Advance Menu Manager plugin <= 3.1.1 - Settings Change vulnerability — Advance Menu ManagerCWE-862 7.1 High2024-12-18
CVE-2024-54227 WordPress Minimum and Maximum Quantity for WooCommerce plugin <= 2.0.0 - Broken Access Control vulnerability — Minimum and Maximum Quantity for WooCommerceCWE-862 4.3 Medium2024-12-09

This page lists every published CVE security advisory associated with Dotstore. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.